General
-
Target
4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739.exe
-
Size
59KB
-
Sample
241112-1zse9s1nfv
-
MD5
e6e847a7ab4665af067c74a800b73eb2
-
SHA1
68281f4493357eb0c93b71055684890774c38318
-
SHA256
4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739
-
SHA512
8688e78e35e569b874f4e6f33a0f23a5a59abcac50c5ddeaf4ff67ccfa6d2f1a708a4c63867a6994803340ba74e17caed317fbd3b20cc6fbd67c9e47ab21bf70
-
SSDEEP
1536:3+ZgwRdiE8cO4p1xRjfTvSq5r3ZiIZ4nouy8uh1aQF:OeodiUO4p13b9HiIeoutuh1aQF
Behavioral task
behavioral1
Sample
4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739.exe
-
Size
59KB
-
MD5
e6e847a7ab4665af067c74a800b73eb2
-
SHA1
68281f4493357eb0c93b71055684890774c38318
-
SHA256
4cbe728a689eefba2b60ad00dfc7524eb735316093023aefe9ee8e4d799eb739
-
SHA512
8688e78e35e569b874f4e6f33a0f23a5a59abcac50c5ddeaf4ff67ccfa6d2f1a708a4c63867a6994803340ba74e17caed317fbd3b20cc6fbd67c9e47ab21bf70
-
SSDEEP
1536:3+ZgwRdiE8cO4p1xRjfTvSq5r3ZiIZ4nouy8uh1aQF:OeodiUO4p13b9HiIeoutuh1aQF
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-